Tag: cybercrime

Alleged Ryuk ransomware gang member arrested in Ukraine and extradited to US

Jun 19, 2025 4:35 PM

Tags: cybercrime, ransom, ransomware, ukraine

A 33-year-old man arrested in Ukraine will face charges in the U.S. of working for the Ryuk cybercrime operation, known for high-profile targets and large ransom demands. First seen on therecord.media Jump to article: therecord.media/alleged-ryuk-member-arrest-ukraine-extradited-us
Fast 800 illegale Betrugs-Websites beschlagnahmt

Jun 18, 2025 10:54 AM

Tags: cybercrime, fraud, infrastructure, Internet

Ermittlern ist es gelungen, sämtliche Online-Betrugsseiten abzuschalten.Baden-württembergische Ermittlungsbehörden haben fast 800 illegale Websites beschlagnahmt. Das Cybercrime-Zentrum bei der Generalstaatsanwaltschaft Karlsruhe und das Landeskriminalamt (LKA) Baden-Württemberg arbeiteten dafür mit der europäischen Polizeibehörde Europol und bulgarischen Strafverfolgungsbehörden zusammen. “Die beschlagnahmten Domains wurden auf eine vom Landeskriminalamt Baden-Württemberg gehostete Beschlagnahmeseite umgeleitet, und können nun nicht mehr zur Begehung von…
Indian Car-Sharing Firm Zoomcar Latest to Suffer Breach

Jun 18, 2025 5:54 AM

Tags: breach, cybercrime, india, phone

The company acknowledged that cybercriminals had taken sensitive information on more than 8 million users, including names, phone numbers, car registration numbers, addresses, and emails. First seen on darkreading.com Jump to article: www.darkreading.com/cyberattacks-data-breaches/indian-car-sharing-firm-zoomcar-breach
Operation Endgame: Do Takedowns and Arrests Matter?

Jun 17, 2025 4:54 PM

Tags: cybercrime

Cybercrime response needs more aggressive actions from those seeking to protect victims and pursue criminals. First seen on darkreading.com Jump to article: www.darkreading.com/vulnerabilities-threats/operation-endgame-takedowns-arrests-matter
Operation Endgame: Do Takedowns and Arrests Matter?

Jun 17, 2025 4:54 PM

Tags: cybercrime

Cybercrime response needs more aggressive actions from those seeking to protect victims and pursue criminals. First seen on darkreading.com Jump to article: www.darkreading.com/vulnerabilities-threats/operation-endgame-takedowns-arrests-matter
Phishing goes prime time: Hackers use trusted sites to hijack search rankings

Jun 17, 2025 3:54 PM

Tags: access, attack, awareness, breach, communications, cybercrime, data, email, google, group, hacker, malicious, organized, phishing, service, software, tool, training, unauthorized

An organized operation currently limited to Turkey: Hacklink is currently letting cybercriminals browse and buy access to thousands of hacked websites, with listings costing as little as $1 per unit, and .gov or high-authority domains fetching even more.The operation appears to be highly organized, with groups like “Neon SEO Academy” and “SEOLink” offering illicit SEO…
Google Warns of Scattered Spider Attacks Targeting IT Support Teams at U.S. Insurance Firms

Jun 17, 2025 3:54 PM

Tags: attack, cybercrime, google, group, insurance, intelligence, threat

The notorious cybercrime group known as Scattered Spider (aka UNC3944) that recently targeted various U.K. and U.S. retailers has begun to target major insurance companies, according to Google Threat Intelligence Group (GTIG).”Google Threat Intelligence Group is now aware of multiple intrusions in the U.S. which bear all the hallmarks of Scattered Spider activity,” John Hultquist,…
Hackers Manipulate Search Engines to Push Malicious Sites

Jun 17, 2025 2:54 PM

Tags: cyber, cybercrime, data-breach, exploit, hacker, Internet, malicious, organized

A new wave of cybercrime is exploiting the very backbone of internet trust: search engines. Recent research by Netcraft has exposed a sophisticated and organized SEO poisoning operation, where hackers manipulate search engine algorithms to push malicious websites to the top of search results. At the heart of this campaign is a platform known as…
Backups Are Under Attack: How to Protect Your Backups

Jun 17, 2025 2:54 PM

Tags: attack, backup, cybercrime, defense, ransom, ransomware, threat

Ransomware has become a highly coordinated and pervasive threat, and traditional defenses are increasingly struggling to neutralize it. Today’s ransomware attacks initially target your last line of defense, your backup infrastructure. Before locking up your production environment, cybercriminals go after your backups to cripple your ability to recover, increasing the odds of a ransom payout.…
Hackers Weaponize Langflow Vulnerability to Launch Flodrix Botnet

Jun 17, 2025 8:54 AM

Tags: ai, botnet, cve, cvss, cyber, cybercrime, exploit, flaw, framework, hacker, remote-code-execution, vulnerability

A critical security flaw in Langflow, a widely adopted Python-based AI prototyping framework, is being actively exploited by cybercriminals to deploy the rapidly evolving Flodrix botnet. Security researchers have confirmed that attackers are exploiting CVE-2025-3248, a remote code execution (RCE) vulnerability rated 9.8 on the CVSS scale, to compromise unpatched Langflow servers and enlist them…
Report Links Los Pollos and RichAds to Malware Traffic Operations

Jun 16, 2025 7:54 PM

Tags: cybercrime, group, malware, threat

New research by Infoblox Threat Intel exposes a hidden alliance between major cybercrime groups like VexTrio and seemingly… First seen on hackread.com Jump to article: hackread.com/report-links-los-pollos-richads-malware-traffic-op/
Cybercrime crackdown disrupts malware, infostealers, marketplaces across the globe

Jun 16, 2025 5:54 PM

Tags: cybercrime, law, malware, marketplace

A burst of global law enforcement actions during the past few weeks marked by a flurry of successful takedowns gives cybercrime experts a jolt of hope. First seen on cyberscoop.com Jump to article: cyberscoop.com/cybercrime-crackdown-operation-endgame-operation-secure/
App Store Security Threats in 2025: Why Hackers Target Mobile Ecosystems

Jun 16, 2025 3:54 PM

Tags: attack, cybercrime, hacker, mobile, tactics, threat

In 2025, app store security threats have reached unprecedented levels, driven by increasingly sophisticated cybercriminal tactics and expanding attack surfaces. First seen on securityboulevard.com Jump to article: securityboulevard.com/2025/06/app-store-security-threats-in-2025-why-hackers-target-mobile-ecosystems/
Operation Deep Sentinel: Authorities Shut Down Darknet Market Archetyp

Jun 16, 2025 2:54 PM

Tags: cyber, cybercrime, dark-web, international, law, marketplace

In a major international law enforcement operation dubbed >>Operation Deep Sentinel,>Archetyp Market,
Hackers Compromise Discord Invite to Inject Malicious Links Delivering AsyncRAT

Jun 16, 2025 1:54 PM

Tags: cyber, cybercrime, exploit, hacker, infrastructure, malicious, malware, phishing, threat

Threat actors have exploited Discord’s invite system to distribute malicious links, ultimately delivering AsyncRAT and other harmful payloads. Discord, a widely trusted platform for gamers, developers, and communities, has become a target for cybercriminals who abuse its infrastructure particularly the invite link and content delivery features to orchestrate phishing schemes and malware infections. This campaign,…
GrayAlpha Hackers Group Exploits Browser Updates to Deploy PowerNet Loader and NetSupport RAT

Jun 16, 2025 12:54 PM

Tags: attack, cyber, cybercrime, exploit, finance, group, hacker, infrastructure, malware, powershell, rat, threat, update

A new infrastructure linked to GrayAlpha, a cybercriminal entity overlapping with the notorious FIN7 group, has been exposed. This financially motivated threat actor, active since at least 2013, is known for its sophisticated attacks targeting retail, hospitality, and financial sectors. Custom Malware Uncovered The latest findings reveal GrayAlpha’s use of custom malware, including a PowerShell…
Anubis Ransomware Introduces Irreversible File Destruction Feature

Jun 16, 2025 12:54 PM

Tags: cyber, cybercrime, encryption, ransomware, service

A new and menacing player has emerged in the cybercrime landscape with the introduction of Anubis, a Ransomware-as-a-Service (RaaS) operation that blends traditional file encryption with a devastating file destruction capability. Active since December 2024, Anubis has quickly gained notoriety in 2025 for its unique >>wipe mode
Unusual Toolset Behind Fog Ransomware Prompts Fresh Security Concerns

Jun 14, 2025 5:54 AM

Tags: business, cybercrime, cybersecurity, detection, open-source, ransomware, software

A newly discovered ransomware operation dubbed Fog is raising fresh concerns in the cybersecurity community after researchers found it leveraging a highly unusual mix of legitimate business software and open-source offensive security tools. The campaign, observed in June 2025, is part of a growing trend where cybercriminals are repurposing trusted programs to evade traditional detection…
Paraguay Suffered Data Breach: 7.4 Million Citizen Records Leaked on Dark Web

Jun 13, 2025 8:54 PM

Tags: breach, cybercrime, dark-web, data, data-breach

Resecurity researchers found 7.4 million records containing personally identifiable information (PII) of Paraguay citizens on the dark web. Resecurity has identified 7.4 million records containing personally identifiable information (PII) of Paraguayan citizens leaked on the dark web today. Last week, cybercriminals have offered information about all citizens of Paraguay for sale, demanding $7.4 million in…
Cybersecurity Snapshot: NIST Offers Zero Trust Implementation Advice, While OpenAI Shares ChatGPT Misuse Incidents

Jun 13, 2025 7:54 PM

Tags: access, ai, attack, best-practice, breach, chatgpt, china, cloud, computer, computing, control, credentials, crime, cyber, cybercrime, cybersecurity, dark-web, data, deep-fake, defense, detection, encryption, endpoint, exploit, finance, fraud, government, guide, Hardware, identity, infrastructure, intelligence, Internet, iot, korea, law, least-privilege, linkedin, malicious, malware, military, ml, mobile, monitoring, network, nist, north-korea, openai, phishing, phone, programming, ransomware, risk, russia, scam, service, social-engineering, software, supply-chain, technology, theft, threat, tool, update, vulnerability, zero-trust

Check out NIST best practices for adopting a zero trust architecture. Plus, learn how OpenAI disrupted various attempts to abuse ChatGPT. In addition, find out what Tenable webinar attendees said about their exposure management experiences. And get the latest on cyber crime trends, a new cybersecurity executive order and more! Dive into six things that…
Dutch police identify users as young as 11-year-old on Cracked.io hacking forum

Jun 13, 2025 6:54 PM

Tags: cybercrime, hacking

Dutch police have announced that they have identified 126 individuals linked to the now dismantled Cracked.io cybercrime forum. First seen on bitdefender.com Jump to article: www.bitdefender.com/en-us/blog/hotforsecurity/dutch-police-cracked-io-hacking-forum
INTERPOL-Led Effort Dismantles Infostealer Malware Network in 26 Countries Across Asia-Pacific Region

Jun 13, 2025 6:54 PM

Tags: cybercrime, group, interpol, kaspersky, malware, network

INTERPOL partnered with Group-IB, Kaspersky, and Trend Micro to take down a cybercrime network. They alerted more than 216,000 individuals and organizations that were possible victims. First seen on techrepublic.com Jump to article: www.techrepublic.com/article/news-interpol-operation-secure-cybercrime-asia-pacific/
INTERPOL-Led Effort Dismantles Infostealer Malware Network in 26 Countries Across Asia-Pacific Region

Jun 13, 2025 6:54 PM

Tags: cybercrime, group, interpol, kaspersky, malware, network

INTERPOL partnered with Group-IB, Kaspersky, and Trend Micro to take down a cybercrime network. They alerted more than 216,000 individuals and organizations that were possible victims. First seen on techrepublic.com Jump to article: www.techrepublic.com/article/news-interpol-operation-secure-cybercrime-asia-pacific/
Paraguay is Being Targeted by Cybercriminals – 7.4 Million Citizen Records for Sale

Jun 13, 2025 5:54 PM

Tags: cybercrime

First seen on resecurity.com Jump to article: www.resecurity.com/blog/article/paraguay-is-being-targeted-by-cybercriminals-74-million-citizen-records-for-sale
Fog Ransomware Uses Pentesting Tools to Steal Data and Launch Attacks

Jun 13, 2025 12:54 PM

Tags: attack, breach, cyber, cybercrime, cybersecurity, data, data-breach, finance, hacker, monitoring, network, open-source, penetration-testing, ransomware, software, tactics, tool

Fog ransomware incidents in recent years have exposed a dangerous new trend in cybercrime: hackers are using open-source penetration testing tools and genuine staff monitoring software to breach networks, steal confidential data, and initiate ransomware attacks. This unprecedented blend of tactics has targeted major financial institutions, raising alarms among cybersecurity professionals. Unprecedented Toolset in a…
Neue Taktik der 3AMGruppe: Virtuelle Maschine als Tarnkappe

Jun 13, 2025 12:54 PM

Tags: access, cyberattack, cybercrime, ransomware, social-engineering, sophos

Sophos X-Ops hat eine Ransomware-Angriffswelle analysiert, bei der die Cybercrime-Gruppe ‘3AM” bewährte Social-Engineering-Methoden sowie die Nutzung legitimer Fernwartungstools mit einer technischen Neuerung kombiniert: Den Einsatz einer versteckten virtuellen Maschine, um verdeckt Zugriff auf das Unternehmensnetzwerk zu erlangen unter Umgehung klassischer Endpunktschutzlösungen. Im ersten Quartal 2025 betreute das Sophos X-Ops-Team ein Unternehmen, das einen solchen Angriff First…
Malware attack disguises itself as DeepSeek installer

Jun 13, 2025 11:54 AM

Tags: ai, attack, cybercrime, exploit, malware, open-source

Cybercriminals are exploiting the growing interest in open source AI models by disguising malware as a legitimate installer for DeepSeek. First seen on grahamcluley.com Jump to article: grahamcluley.com/malware-attack-disguises-itself-as-deepseek-installer/
JSFireTruck Obfuscation Helps Cybercriminals Hijack Trusted Sites with Malicious JavaScript

Jun 13, 2025 11:54 AM

Tags: attack, cyber, cybercrime, exploit, malicious, malware, threat

A sophisticated and extensive cyber attack campaign has been uncovered, in which threat actors are compromising legitimate websites to inject highly obfuscated JavaScript code. Dubbed “JSFireTruck,” this obfuscation technique enables cybercriminals to quietly redirect unsuspecting visitors to malicious sites capable of delivering malware, executing exploits, and serving unwanted advertisements. The campaign, detected across over 200,000…
Cybercrime Risiko Index warnt vor Cyberangriffen: Deutsche Verbraucher und KMU stark betroffen

Jun 13, 2025 1:54 AM

Tags: cyberattack, cybercrime, risk

First seen on datensicherheit.de Jump to article: www.datensicherheit.de/cybercrime-risiko-index-warnung-cyberangriffe-deutschland-verbraucher-kmu
Cybercriminals Exploiting Expired Discord Invite Links to Deploy Multi-Stage Malware

Jun 12, 2025 10:53 PM

Tags: attack, cloud, cyber, cybercrime, exploit, flaw, malicious, malware, service

Security researchers have uncovered a sophisticated malware campaign exploiting a little-known flaw in Discord’s invitation system, enabling cybercriminals to hijack expired or deleted invite links and redirect unsuspecting users to malicious servers. This attack chain, discovered by Check Point Research, leverages trusted cloud services and advanced evasion techniques to deliver powerful malware, with a particular…